phishingBubble: a new tool for phishing scams
Cybercriminals are now deploying web applications generated by Bubble, an AI-powered app builder, to hunt for corporate credentials.
Business
1399 articles
supply chainSpam packages in npm: what are they and why are they dangerous?
In November 2025, the npm ecosystem was hit by a flood of junk packages that were part of the IndonesianFoods malicious campaign. We’re breaking down the lessons learned from this incident.
Malware disguised as AI agents
Threat actors are promoting pages containing malicious instructions for installing AI agents intended for workflow automation.
EducationWhy ransomware attacks on educational institutions are sharply rising
Educational institutions are increasingly falling victim to ransomware attacks. We look at some real-world incidents, explain their causes, and discuss how to mitigate risks to academic infrastructure.
containersAnother look inside the container
The latest update to Kaspersky Cloud Workload Security adds support for an AI assistant for image analysis.
macOSThe ExifTool vulnerability: how an image can infect macOS systems
An in-depth analysis of CVE-2026-3102, a vulnerability posing a potential threat to anyone processing images on a Mac.
Cloudless malware attribution
What is the purpose of a local version of the Kaspersky Threat Attribution Engine, and how to hook it up to IDA Pro?
social engineering
OpenClaw threats: assessing the risks, and how to handle shadow AI
What corporate security teams should do about the “viral” AI agent.
Risks, vulnerabilities, and zero trust: key terms the CISO and the board must agree on
Breaking down core cybersecurity terms that colleagues often interpret differently or incorrectly.
How to detect FortiCloud SSO authentication bypass
Kaspersky SIEM got a set of correlation rules for detecting attempts to exploit vulnerabilities for authentication bypass in Fortinet products.
The practical value of cyberthreat attribution
Why is it useful to attribute malware to a specific hacker group?
Detecting account compromise with SIEM
Detecting attacks related to compromised accounts with AI and other updates in Kaspersky SIEM.
AI agents in your organization: managing the risks
The top-10 risks of deploying autonomous AI agents, and our mitigation recommendations.
Epochalypse Now — or how to deal with Y2K38
What is the year 2038 problem — also known as “Unix Y2K” — and how to prepare corporate IT systems for it?
Why businesses need to track down their evil digital twins
Crooks are impersonating your brand to attack customers, partners, and employees. How do you spot — and stop — an attack of the clones?
Trust but verify: how we set the standard for transparency and trust
Who can you trust in the cybersecurity solutions market? Fourteen major vendors were compared in terms of transparency, security management, and data-handling practices – and guess which was a leader across the board?!…
Stealthy malware masking its activity, deploying infostealer
Cybercriminals are distributing malware that deploys an infostealer and masks its activity in network and system logs.
ForumTroll targets political scientists
GReAT experts have analyzed a new targeted campaign by the ForumTroll APT group.
Forgotten IT infrastructure: even worse than shadow IT
How to eliminate the threat posed to organizations by ownerless servers and services, outdated libraries, and insecure APIs.